Increasingly sophisticated attacks and hackers certainly make it hard for platform providers to ensure best security practices. Google was able to use its research findings to secure 67 million accounts from abuse, and the company debuted a heightened protection program for Gmail users especially susceptible to personalized attacks in November.
If you reuse your passwords across accounts, this one is for you: - Around 12% of records compromised by data breaches include a username or password for Gmail, and 7% of those records are valid for reuse, according to Google research of account takeover and hijacker black markets. - Google accounts were especially targeted by phishing and keylogger schemes from March 2016 to March 2017; 12-25% of attacks resulted in attackers acquiring a valid password. - As platform providers beef up authentication requirements for gaining access to accounts, attackers are no longer targeting just passwords. More than 80% of blackhat phishing tools and close to three-quarters of keyloggers also tried to yield an IP address and location from their attacks, and close to 20% of attack tools yielded a phone number as well as device make and model